Hello,
We are looking at building redundancy into our leased line networks using VPN internet tunnels. Is it possible to create a hub and spoke system with connected OpenBSD machines that use BGP to trigger a different route when the leased line fails? I don't know if the explanation is clear enough so I'll provide some more information. I want to build a firewall using OpenBSD that will create a VPN tunnel trough our leased lines. This machine will also have a internet connection on a second Ethernet card on which it will build a VPN to our main office. Is it possible to use BGP to reroute the traffic over the internet VPN if the leased line VPN fails? I'm not really sure if this is possible because of how IpSEC is handled. Kind regards, Kor Boerema
